Lucene search
+L

66 matches found

CVE
CVE
added 2025/12/15 4:32 a.m.17 views

CVE-2025-14704

The CVE-2025-14704 entry concerns Shiguangwu sgwbox N3 (version 2.0.25). The vulnerability arises from a path traversal in an unknown function within the API component’s /eshell file, enabling remote exploitation. Multiple sources confirm that the exploit is public and that the vendor was contact...

9.8CVSS6.2AI score0.11219EPSS
Exploits1References4Affected Software1
EUVD
EUVD
added 2025/12/15 4:32 a.m.6 views

EUVD-2025-203335

A vulnerability was found in Shiguangwu sgwbox N3 2.0.25. The impacted element is an unknown function of the file /eshell of the component API. The manipulation results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor...

7.5CVSS6.1AI score0.11219EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/12/15 4:32 a.m.171 views

CVE-2025-14704 Shiguangwu sgwbox N3 API eshell path traversal

A vulnerability was found in Shiguangwu sgwbox N3 2.0.25. The impacted element is an unknown function of the file /eshell of the component API. The manipulation results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor...

7.5CVSS0.11219EPSS
Exploits1References4
NVD
NVD
added 2025/12/15 4:15 a.m.8 views

CVE-2025-14703

A vulnerability has been found in Shiguangwu sgwbox N3 2.0.25. The affected element is an unknown function of the file /fsnotify of the component POST Message Handler. The manipulation of the argument token leads to improper authentication. It is possible to initiate the attack remotely. The...

6.9CVSS0.00616EPSS
Exploits1References4
CVE
CVE
added 2025/12/15 4:2 a.m.18 views

CVE-2025-14703

CVE-2025-14703 affects Shiguangwu sgwbox N3 (version 2.0.25). The vulnerability is in an unknown function under /fsnotify, in the POST Message Handler, where manipulation of the token argument leads to improper authentication. It can be exploited remotely and the exploit has been publicly disclos...

6.9CVSS6.4AI score0.00616EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/12/15 4:2 a.m.31 views

CVE-2025-14703 Shiguangwu sgwbox N3 POST Message fsnotify improper authentication

A vulnerability has been found in Shiguangwu sgwbox N3 2.0.25. The affected element is an unknown function of the file /fsnotify of the component POST Message Handler. The manipulation of the argument token leads to improper authentication. It is possible to initiate the attack remotely. The...

6.9CVSS0.00616EPSS
Exploits1References4
EUVD
EUVD
added 2025/12/15 4:2 a.m.6 views

EUVD-2025-203325

A vulnerability has been found in Shiguangwu sgwbox N3 2.0.25. The affected element is an unknown function of the file /fsnotify of the component POST Message Handler. The manipulation of the argument token leads to improper authentication. It is possible to initiate the attack remotely. The...

6.9CVSS6.2AI score0.00616EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.3 views

SGWBox N3 路径遍历漏洞

SGWBox N3 is a network storage device from China's Pickup Dock SGWBox. A path traversal vulnerability exists in SGWBox N3 version 2.0.25, which stems from incorrect manipulation of the file/eshell and could lead to path traversal...

9.8CVSS7.4AI score0.11219EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.5 views

SGWBox N3 命令注入漏洞

SGWBox N3 is a network storage device from China's Pickup Dock SGWBox. A command injection vulnerability exists in SGWBox N3 version 2.0.25, which stems from incorrect manipulation of the parameter params in the component SHARESERVER Feature, which could lead to command injection...

10CVSS9.6AI score0.14852EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.5 views

SGWBox N3 命令注入漏洞

SGWBox N3 is a network storage device from China's Pickup Dock SGWBox. A command injection vulnerability exists in SGWBox N3 version 2.0.25, which stems from incorrect manipulation of the parameter params in the file /usr/sbin/httpeshellserver, which could lead to command injection...

10CVSS9.6AI score0.16767EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/12/15 12:0 a.m.12 views

PT-2025-51208

A security vulnerability has been detected in Shiguangwu sgwbox N3 2.0.25. Affected by this issue is some unknown functionality of the file /usr/sbin/http eshell server of the component WIRELESSCFGGET Interface. The manipulation of the argument params leads to buffer overflow. Remote exploitation...

10CVSS6.7AI score0.05245EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/12/15 12:0 a.m.8 views

PT-2025-51195

Name of the Vulnerable Software and Affected Versions Shiguangwu sgwbox N3 version 2.0.25 Description A command injection issue exists in the NETREBOOT Interface component of the software. This manipulation can be launched remotely and allows for command execution. The vulnerable file is located ...

10CVSS9.6AI score0.16767EPSS
Exploits1References13
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.4 views

SGWBox N3 安全漏洞

SGWBox N3 is a network storage device from China's Pickup Dock SGWBox. A security vulnerability exists in SGWBox N3 version 2.0.25, which stems from incorrect manipulation of the parameter params in the file /usr/sbin/httpeshellserver, which could result in a buffer overflow...

10CVSS9.7AI score0.05799EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.5 views

SGWBox N3 安全漏洞

SGWBox N3 is a network storage device from China's Pickup Dock SGWBox. A security vulnerability exists in SGWBox N3 version 2.0.25, which stems from incorrect manipulation of the parameter params in the file /usr/sbin/httpeshellserver, which could result in a buffer overflow...

10CVSS9.7AI score0.05245EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.8 views

SGWBox N3 授权问题漏洞

SGWBox N3 is a network storage device from China's Pickup Dock SGWBox. An authorization issue vulnerability exists in SGWBox N3 version 2.0.25, which stems from incorrect manipulation of the parameter token in the file/fsnotify, which could lead to improper authentication...

6.9CVSS5.5AI score0.00616EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.7 views

SGWBox N3 命令注入漏洞

SGWBox N3 is a network storage device from China's Pickup Dock SGWBox. A command injection vulnerability exists in SGWBox N3 version 2.0.25, which stems from incorrect manipulation of the parameter params in the file /usr/sbin/httpeshellserver, which could lead to command injection...

10CVSS9.6AI score0.16767EPSS
Exploits1References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in n3-ux (npm)

The package n3-ux was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-27043 Malicious code in n3-ux (npm)

The package n3-ux was found to contain malicious code...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/12 12:0 a.m.3 views

Assessing the Latency of Network Layer Security in 5G Networks

In contrast to its predecessors, 5G supports a wide range of commercial, industrial, and critical infrastructure scenarios. One key feature of 5G, ultra-reliable low latency communication, is particularly appealing to such scenarios for its real-time capabilities. However, 5G's enhanced security,...

6.9AI score
Exploits0
CNNVD
CNNVD
added 2025/02/03 12:0 a.m.6 views

NRadio N8-180 安全漏洞

The NRadio N8-180 is a wireless receiver from NRadio. A security vulnerability exists in the NRadio N8-180 NROS-1.9.2.n3.c5 version, which stems from vulnerability to cross-site scripting attacks via the 2.4 GHz and 5 GHz name parameters...

6.1CVSS6.1AI score0.00303EPSS
Exploits0References3
Rows per page
Query Builder